Key Internet operator VeriSign hit by hackers, by Joseph Menn
The security breaches at the VeriSign, Inc. shocked security experts worldwide after they were made public according to the new SEC rules. The breaches occurred in 2010 but even company’s top management did not know about them till September 2011. The importance of the IT security at the VeriSign is paramount: till August 2010 it was a largest provider the Secure Socket Layer certificates. These certificates separate the “fake” websites from the legitimate ones. Whenever one sees the “https” in the browser one can assume that the personal and financial information typed in is secured. Thus creating the fake certificates allows hackers steal the valuable information.
The details of the breaches, except those disclosed in the SEC filing, are unknown. The company’s representative say that they do not think that SSL technology was compromised, but they do not say it firmly. The article also mentions the similar attacks on the RCA, which also provides the secure authentication services. No doubts, the attacks on the companies which are core providers of the secure internet connections is a very big deal which may put all the business transactions at a serious risk. I think that it is also very bad that the top management did not find out about the security breaches in time.
Key Internet operator VeriSign hit by hackers, by Joseph Menn
The security breaches at the VeriSign, Inc. shocked security experts worldwide after they were made public according to the new SEC rules. The breaches occurred in 2010 but even company’s top management did not know about them till September 2011. The importance of the IT security at the VeriSign is paramount: till August 2010 it was a largest provider the Secure Socket Layer certificates. These certificates separate the “fake” websites from the legitimate ones. Whenever one sees the “https” in the browser one can assume that the personal and financial information typed in is secured. Thus creating the fake certificates allows hackers steal the valuable information.
The details of the breaches, except those disclosed in the SEC filing, are unknown. The company’s representative say that they do not think that SSL technology was compromised, but they do not say it firmly. The article also mentions the similar attacks on the RCA, which also provides the secure authentication services. No doubts, the attacks on the companies which are core providers of the secure internet connections is a very big deal which may put all the business transactions at a serious risk. I think that it is also very bad that the top management did not find out about the security breaches in time.